CHANGES: mention blinding reverting in ECDSA.

author Andy Polyakov <appro@openssl.org>

Mon, 30 Jul 2018 10:39:08 +0000 (12:39 +0200)

committer Andy Polyakov <appro@openssl.org>

Wed, 1 Aug 2018 14:33:51 +0000 (16:33 +0200)
author Andy Polyakov <appro@openssl.org>
Mon, 30 Jul 2018 10:39:08 +0000 (12:39 +0200)
committer Andy Polyakov <appro@openssl.org>
Wed, 1 Aug 2018 14:33:51 +0000 (16:33 +0200)
diff --git a/CHANGES b/CHANGES

index 1bf0f0b2a074d3fe972b898efe9cb28159ab3ab3..b8e2f862d5336447f8b6c2006d8f31be71d623ec 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -9,6 +9,10 @@
  
   Changes between 1.0.2o and 1.0.2p [xx XXX xxxx]
  
+  *) Revert blinding in ECDSA sign and instead make problematic addition
+     length-invariant. Switch even to fixed-length Montgomery multiplication.
+     [Andy Polyakov]
+
    *) Change generating and checking of primes so that the error rate of not
       being prime depends on the intended use based on the size of the input.
       For larger primes this will result in more rounds of Miller-Rabin.
author	Andy Polyakov <appro@openssl.org>
	Mon, 30 Jul 2018 10:39:08 +0000 (12:39 +0200)
committer	Andy Polyakov <appro@openssl.org>
	Wed, 1 Aug 2018 14:33:51 +0000 (16:33 +0200)